US10915596B2 - Method and apparatus of processing invalid user input search information - Google Patents
Method and apparatus of processing invalid user input search information Download PDFInfo
- Publication number
- US10915596B2 US10915596B2 US15/671,364 US201715671364A US10915596B2 US 10915596 B2 US10915596 B2 US 10915596B2 US 201715671364 A US201715671364 A US 201715671364A US 10915596 B2 US10915596 B2 US 10915596B2
- Authority
- US
- United States
- Prior art keywords
- request
- url
- search
- invalid
- response
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active, expires
Links
- 238000000034 method Methods 0.000 title claims abstract description 28
- 238000012545 processing Methods 0.000 title abstract description 9
- 230000004044 response Effects 0.000 claims abstract description 32
- 238000012986 modification Methods 0.000 claims abstract description 9
- 230000004048 modification Effects 0.000 claims abstract description 9
- 230000000903 blocking effect Effects 0.000 claims abstract description 5
- 238000012546 transfer Methods 0.000 claims description 4
- 238000004891 communication Methods 0.000 description 5
- 230000000694 effects Effects 0.000 description 4
- VYZAMTAEIAYCRO-UHFFFAOYSA-N Chromium Chemical compound [Cr] VYZAMTAEIAYCRO-UHFFFAOYSA-N 0.000 description 3
- 238000004590 computer program Methods 0.000 description 3
- 235000019687 Lamb Nutrition 0.000 description 2
- 230000009471 action Effects 0.000 description 2
- 230000011664 signaling Effects 0.000 description 2
- 230000008901 benefit Effects 0.000 description 1
- 235000014510 cooky Nutrition 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 238000001914 filtration Methods 0.000 description 1
- 230000008569 process Effects 0.000 description 1
- 238000011144 upstream manufacturing Methods 0.000 description 1
- 230000000007 visual effect Effects 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/90—Details of database functions independent of the retrieved data types
- G06F16/95—Retrieval from the web
- G06F16/955—Retrieval from the web using information identifiers, e.g. uniform resource locators [URL]
- G06F16/9566—URL specific, e.g. using aliases, detecting broken or misspelled links
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/90—Details of database functions independent of the retrieved data types
- G06F16/95—Retrieval from the web
- G06F16/951—Indexing; Web crawling techniques
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/02—Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
-
- H04L67/2814—
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/56—Provisioning of proxy services
- H04L67/563—Data redirection of data network streams
-
- H04L61/1511—
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/45—Network directories; Name-to-address mapping
- H04L61/4505—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols
- H04L61/4511—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols using domain name system [DNS]
Definitions
- One embodiment of the present invention may include a method of processing a user initiated request for information.
- the method may include receiving a user initiated request including a uniform resource locator (URL) submitted to a web browser application.
- the method may also include receiving a response that the URL is an invalid URL that cannot be resolved to a corresponding webpage, and blocking a subsequent attempt to transmit the user initiated request as a browser modified search request that includes modifications to the user initiated request.
- URL uniform resource locator
- ISPs now use products that sit in front of the DNS server and capture the DNS responses, and when they respond with an NXDOMAIN, those products instead return the IP address of a search landing page with advertisements that are sponsored by third party affiliates.
- This scenario provides ISPs with about a buck per year for each subscriber as added revenue.
- all such ISPs are required to accommodate users for with the replacement of the NXDOMAIN message by redirecting them to a fake landing page address which causes disruption.
- Such a default redirection of the users' search requests are generally regarded as unsatisfactory to the users.
- the terms CHEAP and PATENT were entered as two separated words into an address bar of a web browser.
- the search engine recognized that the URL was not formatted correctly and was not a well-formed URL.
- the search was automatically sent to a search engine that was configured as the default-configured search provider.
Landscapes
- Engineering & Computer Science (AREA)
- Databases & Information Systems (AREA)
- Theoretical Computer Science (AREA)
- General Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Data Mining & Analysis (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Signal Processing (AREA)
- Computer Networks & Wireless Communication (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- Information Transfer Between Computers (AREA)
Abstract
Description
GET/ |
search?source=ig&hl=en&rlz=&q=cheap+patent&btnG=Google+Search&aq=f&aqi= |
g-v1g-b1&aql=&oq= HTTP/1.1 |
Host: www.google.com |
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0.1) |
Gecko/20100101 Firefox/4.0.1 |
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/;q=0.8 |
Accept-Language: en-us,en;q=0.5 |
Accept-Encoding: gzip, deflate |
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 |
Keep-Alive: 115 |
Connection: keep-alive |
Referer: http://www.google.com/ig?hl=en |
Cookie: |
PREF=ID=162ec2c30fca3a3d:U=415e2783207dd2be:TM=1308507183:LM=130850718 |
3:S=7PJ9YHYENVdLxphJ; |
NID=48=ILnd9NzontdZdikvop08LIjb6Kh3Xski60vfQIAMonJOChYyvxjbgTm7ZMOI |
3NCUv953lRjlCnFXrpUdTkRlMAlX2u1T2duafB6Uk3RnYuWqZ2BVnB- |
eW3gLHQVhaqH; | SID=DQAAALoAAAB9LcIuT--sMdWjkoggdHkze- |
6wwOl3pWkZ7qyowyVraiEKXGM37baZeHsenv05RWgoQTLQWoDLm4pGAwDjRn |
VNCEGvo5XeKH14yC4vgS8rdDXtVIq4ag20eRlWB9CF0BxLQUaRW4QyUHvXHH |
W6mkdGYjZB3-aLmJzkhnBgOzPgyCx52DyXkKS2- |
YavomA0gCSjWG5gqS1izB3HuK-pxjBWo1jqFjzKGQuE_2px- |
ZgOmoC8782mEfpnybrkrwWLbEo; HSID=AAMxYgzQTmoflsnK7. |
Claims (20)
Priority Applications (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US15/671,364 US10915596B2 (en) | 2011-08-24 | 2017-08-08 | Method and apparatus of processing invalid user input search information |
US17/171,984 US11580185B2 (en) | 2011-08-24 | 2021-02-09 | Method and apparatus of processing invalid user input search information |
US18/169,168 US12086201B2 (en) | 2011-08-24 | 2023-02-14 | Method and apparatus of processing invalid user input search information |
Applications Claiming Priority (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US13/217,076 US8806004B2 (en) | 2011-08-24 | 2011-08-24 | Method and apparatus of processing invalid user input search information |
US14/456,126 US9727658B2 (en) | 2011-08-24 | 2014-08-11 | Method and apparatus of processing invalid user input search information |
US15/671,364 US10915596B2 (en) | 2011-08-24 | 2017-08-08 | Method and apparatus of processing invalid user input search information |
Related Parent Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US14/456,126 Continuation US9727658B2 (en) | 2011-08-24 | 2014-08-11 | Method and apparatus of processing invalid user input search information |
Related Child Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US17/171,984 Continuation US11580185B2 (en) | 2011-08-24 | 2021-02-09 | Method and apparatus of processing invalid user input search information |
Publications (2)
Publication Number | Publication Date |
---|---|
US20170357727A1 US20170357727A1 (en) | 2017-12-14 |
US10915596B2 true US10915596B2 (en) | 2021-02-09 |
Family
ID=47745287
Family Applications (5)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US13/217,076 Active 2032-09-25 US8806004B2 (en) | 2011-08-24 | 2011-08-24 | Method and apparatus of processing invalid user input search information |
US14/456,126 Active 2033-02-17 US9727658B2 (en) | 2011-08-24 | 2014-08-11 | Method and apparatus of processing invalid user input search information |
US15/671,364 Active 2032-05-12 US10915596B2 (en) | 2011-08-24 | 2017-08-08 | Method and apparatus of processing invalid user input search information |
US17/171,984 Active 2031-10-30 US11580185B2 (en) | 2011-08-24 | 2021-02-09 | Method and apparatus of processing invalid user input search information |
US18/169,168 Active US12086201B2 (en) | 2011-08-24 | 2023-02-14 | Method and apparatus of processing invalid user input search information |
Family Applications Before (2)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US13/217,076 Active 2032-09-25 US8806004B2 (en) | 2011-08-24 | 2011-08-24 | Method and apparatus of processing invalid user input search information |
US14/456,126 Active 2033-02-17 US9727658B2 (en) | 2011-08-24 | 2014-08-11 | Method and apparatus of processing invalid user input search information |
Family Applications After (2)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US17/171,984 Active 2031-10-30 US11580185B2 (en) | 2011-08-24 | 2021-02-09 | Method and apparatus of processing invalid user input search information |
US18/169,168 Active US12086201B2 (en) | 2011-08-24 | 2023-02-14 | Method and apparatus of processing invalid user input search information |
Country Status (1)
Country | Link |
---|---|
US (5) | US8806004B2 (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US11580185B2 (en) * | 2011-08-24 | 2023-02-14 | Perftech, Inc | Method and apparatus of processing invalid user input search information |
Families Citing this family (21)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7328266B2 (en) | 2001-12-18 | 2008-02-05 | Perftech, Inc. | Internet provider subscriber communications system |
US8108524B2 (en) * | 2001-12-18 | 2012-01-31 | Perftech, Inc. | Internet connection user communications system |
US8566928B2 (en) | 2005-10-27 | 2013-10-22 | Georgia Tech Research Corporation | Method and system for detecting and responding to attacking networks |
US10027688B2 (en) | 2008-08-11 | 2018-07-17 | Damballa, Inc. | Method and system for detecting malicious and/or botnet-related domain names |
US8578497B2 (en) | 2010-01-06 | 2013-11-05 | Damballa, Inc. | Method and system for detecting malware |
US8826438B2 (en) | 2010-01-19 | 2014-09-02 | Damballa, Inc. | Method and system for network-based detecting of malware from behavioral clustering |
US8631489B2 (en) | 2011-02-01 | 2014-01-14 | Damballa, Inc. | Method and system for detecting malicious domain names at an upper DNS hierarchy |
US9936037B2 (en) * | 2011-08-17 | 2018-04-03 | Perftech, Inc. | System and method for providing redirections |
US9922190B2 (en) | 2012-01-25 | 2018-03-20 | Damballa, Inc. | Method and system for detecting DGA-based malware |
US10547674B2 (en) * | 2012-08-27 | 2020-01-28 | Help/Systems, Llc | Methods and systems for network flow analysis |
US10084806B2 (en) | 2012-08-31 | 2018-09-25 | Damballa, Inc. | Traffic simulation to identify malicious activity |
US9894088B2 (en) | 2012-08-31 | 2018-02-13 | Damballa, Inc. | Data mining to identify malicious activity |
US9680861B2 (en) | 2012-08-31 | 2017-06-13 | Damballa, Inc. | Historical analysis to identify malicious activity |
US9571511B2 (en) | 2013-06-14 | 2017-02-14 | Damballa, Inc. | Systems and methods for traffic classification |
US10243953B2 (en) | 2014-05-20 | 2019-03-26 | Box, Inc. | Systems and methods for secure resource access and network communication |
US9813421B2 (en) | 2014-05-20 | 2017-11-07 | Box, Inc. | Systems and methods for secure resource access and network communication |
US9497197B2 (en) * | 2014-05-20 | 2016-11-15 | Box, Inc. | Systems and methods for secure resource access and network communication |
US10270806B2 (en) * | 2015-12-15 | 2019-04-23 | Microsoft Technology Licensing, Llc | Defense against NXDOMAIN hijacking in domain name systems |
CN107436873B (en) * | 2016-05-25 | 2021-05-07 | 北京奇虎科技有限公司 | Website jumping method, device and transfer device |
US10097568B2 (en) * | 2016-08-25 | 2018-10-09 | International Business Machines Corporation | DNS tunneling prevention |
KR102317616B1 (en) * | 2017-01-23 | 2021-10-26 | 삼성전자주식회사 | Electronic apparatus and accessing server method therof |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20040125149A1 (en) * | 2002-12-30 | 2004-07-01 | Eugene Lapidous | Method and apparatus for managing display of popup windows |
US20080222736A1 (en) * | 2007-03-07 | 2008-09-11 | Trusteer Ltd. | Scrambling HTML to prevent CSRF attacks and transactional crimeware attacks |
US20080301139A1 (en) * | 2007-05-31 | 2008-12-04 | Microsoft Corporation | Search Ranger System and Double-Funnel Model For Search Spam Analyses and Browser Protection |
US20110208850A1 (en) * | 2010-02-25 | 2011-08-25 | At&T Intellectual Property I, L.P. | Systems for and methods of web privacy protection |
US20130054802A1 (en) * | 2011-08-24 | 2013-02-28 | Perftech, Inc. | Method and apparatus of processing invalid user input search information |
Family Cites Families (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2005103960A1 (en) * | 2004-04-20 | 2005-11-03 | The Boeing Company | Apparatus and method for redirecting unresolvable addresses using a local care-of ip address |
US20080162699A1 (en) * | 2006-12-29 | 2008-07-03 | John Gaffney | Selectively Apportioning User Web Traffic |
US8856869B1 (en) * | 2009-06-22 | 2014-10-07 | NexWavSec Software Inc. | Enforcement of same origin policy for sensitive data |
US20110191664A1 (en) * | 2010-02-04 | 2011-08-04 | At&T Intellectual Property I, L.P. | Systems for and methods for detecting url web tracking and consumer opt-out cookies |
-
2011
- 2011-08-24 US US13/217,076 patent/US8806004B2/en active Active
-
2014
- 2014-08-11 US US14/456,126 patent/US9727658B2/en active Active
-
2017
- 2017-08-08 US US15/671,364 patent/US10915596B2/en active Active
-
2021
- 2021-02-09 US US17/171,984 patent/US11580185B2/en active Active
-
2023
- 2023-02-14 US US18/169,168 patent/US12086201B2/en active Active
Patent Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20040125149A1 (en) * | 2002-12-30 | 2004-07-01 | Eugene Lapidous | Method and apparatus for managing display of popup windows |
US20080222736A1 (en) * | 2007-03-07 | 2008-09-11 | Trusteer Ltd. | Scrambling HTML to prevent CSRF attacks and transactional crimeware attacks |
US20080301139A1 (en) * | 2007-05-31 | 2008-12-04 | Microsoft Corporation | Search Ranger System and Double-Funnel Model For Search Spam Analyses and Browser Protection |
US20110208850A1 (en) * | 2010-02-25 | 2011-08-25 | At&T Intellectual Property I, L.P. | Systems for and methods of web privacy protection |
US20130054802A1 (en) * | 2011-08-24 | 2013-02-28 | Perftech, Inc. | Method and apparatus of processing invalid user input search information |
US8806004B2 (en) * | 2011-08-24 | 2014-08-12 | Perftech, Inc. | Method and apparatus of processing invalid user input search information |
US9727658B2 (en) * | 2011-08-24 | 2017-08-08 | Perftech, Inc. | Method and apparatus of processing invalid user input search information |
Non-Patent Citations (3)
Title |
---|
"DNS Knowledge What is NXDomain (Non-Existent Domain)" Aug. 17, 2009 from dnsknowledge.com (Year: 2009). * |
Argawal, Amitt "Stop OpenDNS From Redirecting Invalid URLs to their Search Pages" Aug. 4, 2008, from labnol.org (Year: 2008). * |
Burns, Jesse "Cross Site Request Forgery An introduction to a common web application weakness" Version 1.2, Information Security Partners, 2007 (Year: 2007). * |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US11580185B2 (en) * | 2011-08-24 | 2023-02-14 | Perftech, Inc | Method and apparatus of processing invalid user input search information |
US20230195822A1 (en) * | 2011-08-24 | 2023-06-22 | Perftech, Inc. | Method and apparatus of processing invalid user input search information |
US12086201B2 (en) * | 2011-08-24 | 2024-09-10 | Perftech, Inc. | Method and apparatus of processing invalid user input search information |
Also Published As
Publication number | Publication date |
---|---|
US9727658B2 (en) | 2017-08-08 |
US20140351690A1 (en) | 2014-11-27 |
US20210165847A1 (en) | 2021-06-03 |
US8806004B2 (en) | 2014-08-12 |
US20130054802A1 (en) | 2013-02-28 |
US11580185B2 (en) | 2023-02-14 |
US20170357727A1 (en) | 2017-12-14 |
US20230195822A1 (en) | 2023-06-22 |
US12086201B2 (en) | 2024-09-10 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US12086201B2 (en) | Method and apparatus of processing invalid user input search information | |
US20200396252A1 (en) | Systems and methods for identifying phishing websites | |
US9083733B2 (en) | Anti-phishing domain advisor and method thereof | |
US8024804B2 (en) | Correlation engine for detecting network attacks and detection method | |
US8751601B2 (en) | User interface that provides relevant alternative links | |
US8448241B1 (en) | Browser extension for checking website susceptibility to cross site scripting | |
US20090064337A1 (en) | Method and apparatus for preventing web page attacks | |
CN109274632B (en) | Website identification method and device | |
Bin et al. | A DNS based anti-phishing approach | |
CN109768992B (en) | Webpage malicious scanning processing method and device, terminal device and readable storage medium | |
US20090119769A1 (en) | Cross-site scripting filter | |
US20160337378A1 (en) | Method and apparatus for detecting security of online shopping environment | |
EP2695357A1 (en) | Systems, apparatus, and methods for mobile device detection | |
EP2132661A1 (en) | System and method of blocking malicios web content | |
Krishnamurthy et al. | Cat and mouse: Content delivery tradeoffs in web access | |
US20120296713A1 (en) | System of Validating Online Advertising From Third Party Sources | |
Banerjee et al. | SUT: Quantifying and mitigating url typosquatting | |
CN111541672A (en) | Method and system for detecting security of HTTP (hyper text transport protocol) request | |
US20070156890A1 (en) | Method for tracking network transactions | |
CN105635064A (en) | CSRF attack detection method and device | |
US11082437B2 (en) | Network resources attack detection | |
WO2020022456A1 (en) | Information processing device, information processing method, and information processing program | |
WO2011018316A1 (en) | Web browser security | |
US8838741B1 (en) | Pre-emptive URL filtering technique | |
JP2005092564A (en) | Filtering device |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
AS | Assignment |
Owner name: TWO SIGMA HOLDINGS VC ACQUISITION VEHICLE I, LLC, NEW YORK Free format text: SECURITY INTEREST;ASSIGNOR:PERFTECH, INC.;REEL/FRAME:043466/0500 Effective date: 20080911 Owner name: TWO SIGMA HOLDINGS VC ACQUISITION VEHICLE I, LLC, Free format text: SECURITY INTEREST;ASSIGNOR:PERFTECH, INC.;REEL/FRAME:043466/0500 Effective date: 20080911 Owner name: SCHMIDT, EDWARD, NEW YORK Free format text: SECURITY INTEREST;ASSIGNOR:PERFTECH, INC.;REEL/FRAME:043466/0500 Effective date: 20080911 |
|
AS | Assignment |
Owner name: PERFTECH, INC., TEXAS Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:DONZIS, LEWIS THOMAS;SCHMIDT, JONATHAN ELLIOTT;BARON, PETER WAYNE;AND OTHERS;REEL/FRAME:043470/0661 Effective date: 20110823 |
|
FEPP | Fee payment procedure |
Free format text: ENTITY STATUS SET TO SMALL (ORIGINAL EVENT CODE: SMAL); ENTITY STATUS OF PATENT OWNER: SMALL ENTITY |
|
STPP | Information on status: patent application and granting procedure in general |
Free format text: DOCKETED NEW CASE - READY FOR EXAMINATION |
|
STPP | Information on status: patent application and granting procedure in general |
Free format text: NON FINAL ACTION MAILED |
|
STPP | Information on status: patent application and granting procedure in general |
Free format text: RESPONSE TO NON-FINAL OFFICE ACTION ENTERED AND FORWARDED TO EXAMINER |
|
STPP | Information on status: patent application and granting procedure in general |
Free format text: FINAL REJECTION MAILED |
|
STPP | Information on status: patent application and granting procedure in general |
Free format text: RESPONSE AFTER FINAL ACTION FORWARDED TO EXAMINER |
|
STPP | Information on status: patent application and granting procedure in general |
Free format text: NON FINAL ACTION MAILED |
|
STPP | Information on status: patent application and granting procedure in general |
Free format text: RESPONSE TO NON-FINAL OFFICE ACTION ENTERED AND FORWARDED TO EXAMINER |
|
STCF | Information on status: patent grant |
Free format text: PATENTED CASE |
|
MAFP | Maintenance fee payment |
Free format text: PAYMENT OF MAINTENANCE FEE, 4TH YR, SMALL ENTITY (ORIGINAL EVENT CODE: M2551); ENTITY STATUS OF PATENT OWNER: SMALL ENTITY Year of fee payment: 4 |